KR20170054917A - Method and Apparatus for Authenticating Mobile Payment - Google Patents

Method and Apparatus for Authenticating Mobile Payment Download PDF

Info

Publication number
KR20170054917A
KR20170054917A KR1020150157676A KR20150157676A KR20170054917A KR 20170054917 A KR20170054917 A KR 20170054917A KR 1020150157676 A KR1020150157676 A KR 1020150157676A KR 20150157676 A KR20150157676 A KR 20150157676A KR 20170054917 A KR20170054917 A KR 20170054917A
Authority
KR
South Korea
Prior art keywords
authentication
terminal
payment
mobile
information
Prior art date
Application number
KR1020150157676A
Other languages
Korean (ko)
Other versions
KR101780186B1 (en
Inventor
이종성
Original Assignee
(주)한국유비텍
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by (주)한국유비텍 filed Critical (주)한국유비텍
Priority to KR1020150157676A priority Critical patent/KR101780186B1/en
Publication of KR20170054917A publication Critical patent/KR20170054917A/en
Application granted granted Critical
Publication of KR101780186B1 publication Critical patent/KR101780186B1/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/02Payment architectures, schemes or protocols involving a neutral party, e.g. certification authority, notary or trusted third party [TTP]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/12Payment architectures specially adapted for electronic shopping systems
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/16Payments settled via telecommunication systems
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • G06Q20/4014Identity check for transactions
    • G06Q20/40145Biometric identity checks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04BTRANSMISSION
    • H04B5/00Near-field transmission systems, e.g. inductive or capacitive transmission systems

Landscapes

  • Business, Economics & Management (AREA)
  • Engineering & Computer Science (AREA)
  • Accounting & Taxation (AREA)
  • Physics & Mathematics (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Finance (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

A method and an apparatus for authenticating mobile payment are disclosed. The present invention relates to the method and the apparatus for authenticating mobile payment which authenticate payment by using mobile authentication information including bio-information and payment authentication information from a terminal, and authenticate mobile payment of the terminal according to a payment authentication result.

Description

TECHNICAL FIELD The present invention relates to a mobile payment authentication method, and more particularly,

The present embodiment relates to a mobile payment authentication method and apparatus therefor.

The contents described in this section merely provide background information on the present embodiment and do not constitute the prior art.

Market demand for mobile payment using portable terminals is steadily increasing, and various technological approaches (for example, short-range wireless communication, application card, and Beacon payment) are being studied. Particularly, a technology research for activating mobile settlement in offline has been actively conducted, and it has been widely applied to a communication terminal such as a Bluetooth low energy (BLE) or a near field communication (NFC) Mobile payment technology and services using WPAN technology are actively being developed.

Generally, settlement using a short-range communication signal is performed not by actually making a settlement through a short-distance communication signal but by detecting a state of a customer who has already been paid for (for example, an online settlement has been completed in a computer or a terminal) The customer's terminal receives the local communication signal and checks-in to the store. In other words, in general, payment using a short distance communication signal is a method in which a short distance communication signal is unidirectionally advertised and a terminal which acquires a short distance communication signal transmits a short distance communication signal, Is completed or the event of the store in which it is located can be implemented.

Accordingly, there is a need for an authentication method for securely transmitting and receiving payment information to and from a payment terminal, and securely providing mobile settlement to an authenticated terminal.

The present embodiment provides a mobile payment authentication method for performing settlement authentication using mobile authentication information including biometric information and payment authentication information from a terminal, and approving a mobile settlement of the terminal according to the settlement authentication result, and an apparatus therefor There is a main purpose in doing this.

According to an aspect of the present invention, there is provided an apparatus for performing mobile payment authentication in cooperation with a terminal located within a predetermined distance, the apparatus comprising: a terminal for receiving a payment request signal from the terminal, A communication unit for transmitting the information; An authentication information acquisition unit for acquiring mobile authentication information including biometric information and payment authentication information corresponding to the authentication request signal from the terminal; An authentication processing unit for performing payment authentication for the mobile authentication information; And a payment approval processing unit that is interlocked with the card issuer server and processes payment approval based on the payment authentication result.

According to another aspect of the present invention, there is provided a method of performing mobile payment authentication in cooperation with a terminal located within a predetermined distance, the method comprising: receiving a payment request signal from the terminal; A communication process of transmitting to the terminal; An authentication information acquiring step of acquiring mobile authentication information including biometric information and payment authentication information corresponding to the authentication request signal from the terminal; An authentication process for performing payment authentication for the mobile authentication information; And a payment approval processing step of interlocking with the card issuer server and processing payment approval based on the settlement authentication result.

As described above, according to the present embodiment, the mobile payment is authenticated using both the bio information and the payment authentication information, thereby making it possible to more securely process payment security.

1 is a block diagram schematically showing a mobile settlement system according to the present embodiment.
2 is a block diagram schematically showing the settlement authentication apparatus according to the present embodiment.
3 is a flowchart illustrating a method for authenticating mobile settlement according to the present embodiment.
4 is a flowchart illustrating a process of pairing a terminal and a payment terminal according to the present embodiment.
5 is a view illustrating an example of a mobile settlement system according to a first embodiment of the present invention.
6 is a view illustrating an example of a mobile settlement system according to a second embodiment of the present invention.
7 is a view illustrating an example of a mobile settlement system according to a third embodiment of the present invention.
8 is a diagram illustrating an example of a mobile payment system for a visually impaired according to a fourth embodiment of the present invention.
9 is a diagram illustrating an example of a mobile settlement system using settlement authentication information based on short-range communication according to a fifth embodiment of the present invention.
10 is a view illustrating an example of a mobile settlement system using bio information according to a sixth embodiment of the present invention.

Hereinafter, the present embodiment will be described in detail with reference to the accompanying drawings.

1 is a block diagram schematically showing a mobile settlement system according to the present embodiment.

The mobile payment system 100 according to the present embodiment includes a terminal 110, a payment terminal 120, an authentication server 140, a payment agent server 150 and a card issuer server 160.

The terminal 110 means an electronic device capable of transmitting and receiving various data according to a key operation or a command of a user and capable of mobile payment service. The terminal 110 may be a tablet PC, a laptop, a personal computer (PC), a portable multimedia player (PMP), a wireless communication terminal, a smart phone ) And a mobile communication terminal (e.g., a mobile communication terminal).

The terminal 110 is connected to the payment terminal 120 through a pairing process and is connected to the payment terminal 120 through a terminal phone number, a terminal name, a Mobile Identification Number (MIN), an Electronic Serial Number (ESN) And transmits a settlement request signal including at least one piece of information to the payment terminal 120.

When the authentication request signal is received from the payment terminal 120, the terminal 110 transmits the bio information input through the input module provided in the terminal 110 and the mobile authentication information including the payment authentication information generated for payment authentication And transmits the information to the payment terminal 120. Here, the biometric information refers to biometric information such as a fingerprint, an iris, and a vein of a user of the terminal 110, and payment authentication information includes one-time card number (OTC), one-time password ), And the like.

The payment terminal 120 is an electronic device that is installed in a store and performs mobile settlement with the terminal 110, and may be, for example, a point-of-sale (POS) device.

The settlement terminal 120 processes the mobile settlement based on the short distance communication in cooperation with the settlement dongle 122. Here, the payment dongle 122 may be combined with a port provided in the payment terminal 120 in the USB (Universal Serial Bus) type. The billing dongle 122 is connected to the payment terminal 120 only in the USB type. However, the billing dongle 122 is not necessarily limited to the USB type and may be connected to the payment terminal 120 through USB 1.1 to 3.1, USB-C, And may be connected to the terminal 120.

Although the payment terminal 120 and the payment dongle 122 are described as being separate devices, the payment terminal 120 may include a module or a program for performing a function of a payment dongle in the payment terminal 120 Device. ≪ / RTI >

The payment terminal 120 may be configured to transmit the payment authentication information to the payment authentication device 130 through Bluetooth, Bluetooth Low Energy (BLE), Radio Frequency Identification (RFID), Infrared Data Association (IrDA), Zigbee, And performs terminal connection authentication to the terminal 110 using a wireless communication method such as Magnetic Secure Transmission (MST).

The payment terminal 120 receives a payment request signal including terminal identification information from the terminal 110. [ Here, the terminal identification information includes a terminal telephone number, a terminal name, a mobile identification number (MIN), and an electronic serial number (ESN).

The payment terminal 120 transmits an authentication request signal including the first encryption key to the terminal 110 based on the terminal identification information included in the settlement request signal. The payment terminal 120 acquires the encrypted mobile authentication information using the first encryption key. Here, the mobile authentication information includes bio information and payment authentication information, the bio information refers to biometric information such as fingerprint, iris, and vein of the user of the terminal 110, and payment authentication information includes disposable card information OTC (One-Time Card number), OTP (One-Time Password), and the like.

The authentication server 140 compares the reference authentication information and the mobile authentication information, and performs settlement authentication when they match.

The authentication server 140 extracts a previously stored authentication template (previously stored biometric information and payment authentication information) from a database (not shown), combines the authentication template with the first encryption key to generate reference authentication information, Compare.

The authentication server 140 performs payment authentication when the reference authentication information and the mobile authentication information match, and acquires additional authentication information from the terminal 110 when necessary to perform payment authentication.

The payment agency server 150 interlocks with the card issuer server 160 and processes payment approval based on the settlement authentication result. The payment proxy server 150 may be implemented as a VAN (Value Added Network) or a PG (Payment Gateway) server.

The payment proxy server 150 decrypts the payment authentication authenticated mobile authentication information using the second encryption key and transmits the decrypted mobile authentication information to the card company server 160. [ The payment proxy server 150 acquires the payment approval information corresponding to the mobile authentication information decrypted from the card issuer server 160 and processes payment approval for the mobile payment of the terminal 110. [

Although the authentication server 140 and the payment proxy server 150 are described as separate devices, the authentication server 140 and the payment proxy server 150 may be implemented as one payment authentication device 130.

Card issuer server 160 means a server operated by a credit card company for mobile payment based on card information. The card issuer server 160 processes the settlement approval for the mobile settlement of the terminal 110 in cooperation with the authentication server 140 and the settlement proxy server 150. That is, the card issuer server 160 interlocks with the settlement agency server 150 based on the information authenticated by the authentication server 140 to process the mobile settlement approval.

The card issuer server 160 is connected to the settlement agency server 150 to process payment approval for the mobile settlement of the terminal 110. However, It may also be connected to process the payment authorization.

2 is a block diagram schematically showing the settlement authentication apparatus according to the present embodiment.

The settlement authentication device 130 according to the present embodiment includes a pairing unit 210, a communication unit 220, an authentication processing unit 230, and a payment approval processing unit 240.

The pairing unit 210 performs a pairing operation for interlocking between the settlement authentication device 130 and the terminal 110. In other words, the pairing unit 210 performs terminal connection authentication for mobile settlement by performing pairing with the terminal 110 based on the short distance communication.

The pairing unit 210 may be a Bluetooth communication unit such as Bluetooth, Bluetooth Low Energy (BLE), Radio Frequency Identification (RFID), Infrared Data Association (IrDA), Zigbee, MST Secure Transmission) to perform terminal connection authentication.

The pairing unit 210 generates a plurality of terminal lists located within a predetermined distance, selects a terminal having the highest priority among the terminal lists, and performs pairing. The order of priority is determined based on the entrance order information entered in the store for settlement, the rank information according to the service class (rank of the mobile communication company, card company, etc.) of the terminal user, the rank information according to the distance between the settlement authentication apparatus 130 and the terminal 110 Distance information, and the like.

For example, the pairing unit 210 transmits the terminal 110 having the closest distance to the terminal 110 having the highest priority based on the distance information between the payment authentication apparatus 130 and the terminal 110, (110), and performs terminal connection authentication according to the pairing.

The pairing unit 210 exchanges a public key and a random number between the settlement authentication device 130 and the terminal 110, connects the link based on the secret key and the link key generated using the public key and the random number, .

The pairing unit 210 exchanges information between the settlement authentication apparatus 130 and the terminal 110 to perform terminal connection authentication but may include a predetermined radio signal (e.g., magnetic information) from the terminal 110 And may perform terminal connection authentication by exchanging a token.

The communication unit 220 receives the settlement request signal from the terminal 110 and transmits an authentication request signal to the terminal 110.

The communication unit 220 receives a payment request signal including terminal identification information for the terminal 110. Here, the terminal identification information includes a terminal telephone number, a terminal name, a mobile identification number (MIN), and an electronic serial number (ESN).

The communication unit 220 transmits an authentication request signal including the first encryption key to the terminal 110 based on the terminal identification information included in the settlement request signal.

The communication unit 220 includes an authentication information obtaining unit 222 for obtaining mobile authentication information including biometric information and payment information corresponding to the authentication request signal from the terminal 110. [ Here, the communication unit 220 obtains the encrypted mobile authentication information using the first encryption key at the terminal 110. [

The authentication information obtaining unit 222 obtains the encrypted mobile authentication information using the first encryption key. The mobile authentication information includes biometric information and payment authentication information. Here, the biometric information refers to biometric information such as a fingerprint, an iris, and a vein of a user of the terminal 110, and payment authentication information includes one-time card number (OTC), one-time password ), And the like.

The authentication processing unit 240 performs payment authentication for the acquired mobile authentication information.

The authentication processing unit 240 compares the mobile authentication information with the reference authentication information generated using the first encryption key. The authentication processing unit 240 extracts a previously stored authentication template (previously stored biometric information and payment authentication information) from a database (not shown), and combines the authentication template with the first encryption key to generate reference authentication information. Here, the combination may be encryption or a predetermined calculation method.

The authentication processing unit 240 compares the reference authentication information and the mobile authentication information, and performs authentication of payment when they match.

When a plurality of pre-stored authentication templates exist, the authentication processor 240 preferentially extracts the authentication template having the highest priority among the plurality of pre-stored authentication templates, generates reference authentication information, and compares the extracted authentication templates with mobile authentication information . Here, when the reference authentication information is compared with the mobile authentication information, if the mismatch occurs, the operation of extracting the next highest priority authentication template and comparing the generated reference authentication information with the mobile authentication information is repeatedly performed. Here, the priority means a rank corresponding to the predetermined security level, and the higher the security, the stronger the authentication template is.

When generating the reference authentication information using the authentication template having a priority lower than a predetermined reference, the authentication processing unit 240 compares the generated reference authentication information with the mobile authentication information, Information (for example, a password, a personal identification number, etc.) is additionally acquired to perform payment authentication.

The payment approval processing unit 250 interlocks with the card issuer server 160 and processes payment approval based on the payment authentication result.

The payment approval processing unit 250 decrypts the payment authentication authenticated mobile authentication information using the second encryption key and transmits the decrypted mobile authentication information to the card company server 160. [ The payment approval processing unit 250 acquires the payment approval information corresponding to the mobile authentication information decrypted from the card issuer server 160 and processes payment approval. Here, the second encryption key means a decryption key corresponding to the first encryption key. In other words, the data encrypted using the first encryption key can be decrypted only by using the second encryption key.

On the other hand, the payment approval processing unit 250 can decrypt the payment authentication authenticated mobile authentication information using the second encryption key, and transmit the card authentication request signal for the decrypted mobile authentication information to the card issuer server 160. [ The payment approval processing unit 250 acquires the one-time card information corresponding to the card authentication request signal from the card issuer server 160, compares the one-time card information with the decrypted mobile authentication information, Process approval.

3 is a flowchart illustrating a method for authenticating mobile settlement according to the present embodiment.

The settlement authentication device 130 performs terminal connection authentication through the connection with the terminal 110 (S310) (S320). The settlement authentication device 130 is a device that transmits and receives data to and from a mobile device such as Bluetooth, Bluetooth Low Energy (BLE), Radio Frequency Identification (RFID), Infrared Data Association (IrDA), Zigbee, Magnetic Secure Transmission) to perform terminal connection authentication.

The settlement authentication device 130 receives a settlement request signal from the terminal 110 in steps S330 and S332 and transmits an authentication request signal to the terminal 110 in step S340.

The settlement authentication device 130 receives a settlement request signal including terminal identification information for the terminal 110. Here, the terminal identification information includes a terminal telephone number, a terminal name, a mobile identification number (MIN), and an electronic serial number (ESN).

The settlement authentication device 130 transmits an authentication request signal including the first encryption key to the terminal 110 based on the terminal identification information included in the settlement request signal.

The settlement authentication device 130 obtains the encrypted mobile authentication information using the first encryption key (S350). The mobile authentication information includes the bio information and the payment authentication information. Here, the biometric information refers to biometric information such as a fingerprint, an iris, and a vein of a user of the terminal 110, and payment authentication information includes one-time card number (OTC), one-time password ), And the like.

The settlement authentication device 130 compares the reference authentication information and the mobile authentication information, and performs settlement authentication when they match (S360). The payment authentication device 130 extracts a previously stored authentication template (previously stored biometric information and payment authentication information) from a database (not shown), combines the authentication template with the first encryption key to generate reference authentication information, .

The settlement authentication device 130 interlocks with the card issuer server 160 and processes payment approval based on the settlement authentication result (S370, S380). The settlement authentication device 130 decrypts the settlement-approved mobile authentication information using the second encryption key, and transmits the decrypted mobile authentication information to the card company server 160. [ The settlement authentication device 130 acquires settlement approval information corresponding to the mobile authentication information decrypted from the card issuer server 160 and processes payment approval.

The card issuer server 160 transmits a notification message about the payment approval result to the terminal 110 (S390).

4 is a flowchart illustrating a process of pairing a terminal and a payment terminal according to the present embodiment.

The payment terminal 120 exchanges the stored or set public key with the terminal 110 (S410).

Each of the terminal 110 and the payment terminal 120 includes a random number generator and the terminal 110 generates a first random number at step S420 and the payment terminal 120 generates a second random number at step S422.

The terminal 110 and the payment terminal 120 exchange random numbers (S430). In other words, the terminal 110 and the payment terminal 120 exchange the first random number and the second random number with each other.

Each of the terminal 110 and the payment terminal 120 encrypts the first random number and the second random number using a predetermined secret key to generate a link key (S440, S442).

The terminal 110 transmits the link key generated by encrypting the first random number using the secret key to the payment terminal 110 using the public key. The payment terminal 110 performs decoding using the generated secret key, performs link authentication when the first random numbers exchanged, and performs link connection between the terminal 110 and the payment terminal 120 (S450).

5 is a view illustrating an example of a mobile settlement system according to a first embodiment of the present invention.

The payment terminal 120 recognizes the terminal 110 and performs pairing. The payment terminal 120 exchanges tokens with the terminal 110 to perform terminal connection authentication (①, ②, ③). Here, the operation of exchanging the tokens means an operation of exchanging the credit card information, personal information, or the like in the terminal 110 into a token, and the token is used as a disposable when making a settlement like a bus token.

The settlement terminal 120 receives a settlement request signal including terminal identification information for the terminal 110 and transmits a settlement request signal to the credit card company server 160 via the payment transaction server 150 Transfer (⑥).

The payment proxy server 150 transmits an authentication request signal corresponding to the settlement request signal to the terminal 110 via the authentication server 140 (steps 7 and 8).

The terminal 110 transmits the mobile authentication information corresponding to the authentication request signal to the card company server 160 (step (9)). Card issuer server 160 performs payment authentication by linking the received mobile authentication information with authentication server 140. [

The card issuer server 160 generates one-time card information (OTC) corresponding to the terminal 110 and transmits the generated one-time card information to the payment proxy server 150 ⑩).

The settlement proxy server 150 approves (11) the mobile settlement for the terminal 110 using the disposable card information.

6 is a view illustrating an example of a mobile settlement system according to a second embodiment of the present invention.

The payment terminal 120 recognizes the terminal 110 and performs pairing. The payment terminal 120 exchanges tokens with the terminal 110 to perform terminal connection authentication (①, ②, ③). Here, the operation of exchanging the tokens means an operation of exchanging the credit card information, personal information, or the like in the terminal 110 into a token, and the token is used as a disposable when making a settlement like a bus token.

The payment terminal 120 receives (4) a payment request signal including the terminal identification information (User ID) of the terminal 110.

The payment terminal 120 transmits the terminal identification information (UserID) included in the payment request signal to the authentication server 140 and the payment proxy server 150 (5).

(⑥) the authentication request signal for the payment history information and the one-time card number (OTC) corresponding to the authentication server 140 terminal identification information (UserID) to the terminal 110.

The terminal 110 transmits the mobile authentication information corresponding to the authentication request signal to the card issuer server 160 (7). Here, the mobile authentication information may be biometric authentication (biometric authentication) information, pin information, and the like.

Card issuer server 160 performs settlement authentication for mobile authentication information. When the payment is authenticated, the card company server 160 transmits the payment approval result to the terminal 110 (step 8). At the same time, the payment approval result is transmitted to the payment terminal 120 via the payment agent server 150 Transfer (⑧.1, ⑨) to process payment.

7 is a view illustrating an example of a mobile settlement system according to a third embodiment of the present invention.

The payment terminal 120 recognizes the terminal 110 and performs pairing. The payment terminal 120 exchanges tokens with the terminal 110 to perform terminal connection authentication (①, ②, ③). Here, the operation of exchanging the tokens means an operation of exchanging the credit card information, personal information, or the like in the terminal 110 into a token, and the token is used as a disposable when making a settlement like a bus token.

The payment terminal 120 receives (4) a payment request signal including the terminal identification information (User ID) of the terminal 110.

The payment terminal 120 transmits the terminal identification information (UserID) included in the payment request signal to the authentication server 140 and the payment proxy server 150 (5).

Transmits the payment history information and the authentication request signal corresponding to the terminal identification information (UserID) of the authentication server 140 to the terminal 110 (6).

The terminal 110 transmits the mobile authentication information including the one-time card number (OTC) corresponding to the authentication request signal to the card issuer server 160 (7).

Card issuer server 160 performs settlement authentication for mobile authentication information. When the payment is authenticated, the card company server 160 transmits the payment approval result to the terminal 110 (step 8). At the same time, the payment approval result is transmitted to the payment terminal 120 via the payment agent server 150 Transfer (⑧.1, ⑨) to process payment.

8 is a diagram illustrating an example of a mobile payment system for a visually impaired according to a fourth embodiment of the present invention.

The payment terminal 120 recognizes the terminal 110 and performs pairing. The payment terminal 120 exchanges tokens with the terminal 110 to perform terminal connection authentication (①, ②, ③). Here, the operation of exchanging the tokens means an operation of exchanging the credit card information, personal information, or the like in the terminal 110 into a token, and the token is used as a disposable when making a settlement like a bus token.

The payment terminal 120 receives (4) a payment request signal including the terminal identification information (User ID) of the terminal 110. The payment terminal 120 transmits the terminal identification information (User ID) included in the payment request signal to the authentication server 140 and the card issuer server 160 via the payment agency server 150 (⑥.1, ⑥ .2).

(7) the payment history information and the authentication request signal corresponding to the terminal identification information (UserID) of the authentication server 140 to the terminal 110 in the form of a voice message.

The terminal 110 transmits the mobile authentication information corresponding to the authentication request signal to the card company server 160 (8). Here, the mobile authentication information may be biometric authentication (biometric authentication) information, pin information, sign information, or the like.

Card issuer server 160 transmits one-time card number (OTC) to payment agent server 150 based on the mobile authentication information (9). The card issuer server 160 processes the settlement approval (10) using the settlement proxy server 150 and the disposable card information OTC.

When payment is approved, the card issuer server 160 transmits the settlement approval result in the form of a voice message to the terminal 110 (⑪.1) to the terminal 110. At the same time, the payment agency server 150 transmits the payment approval result The payment is transmitted to the payment terminal 120 (11.2) so that the payment is processed.

9 is a diagram illustrating an example of a mobile settlement system using settlement authentication information based on short-range communication according to a fifth embodiment of the present invention.

9, the mobile payment system according to the fifth embodiment generally connects a payment dongle 920, which operates based on a short distance communication, to a POS device 910 used in a store, 920 and the customer terminal 930 through the interworking process.

For example, when a user requests payment for a predetermined item in the mobile payment system, the store manager inputs a price for a predetermined article in the POS device 910. [ Accordingly, the POS device 910 outputs a request message for allowing the payment terminal 920 to recognize the customer terminal 930.

The payment dongle 920 receives payment authentication information from the customer terminal 930 and transmits the settlement authentication information to the payment terminal 930 through the POS device 910. [ And performs settlement in cooperation with a processing server (not shown). Here, the payment processing server (not shown) carries out payment authentication based on the payment authentication information of the customer terminal 930 and transmits the payment approval result to the POS device 910 and the customer terminal 930, do.

FIG. 10 is a view illustrating an example of a payment system using bio information according to a sixth embodiment of the present invention.

10, the payment system according to the fifth embodiment generally includes a biosensing device 1020 for scanning bios information (e.g., fingerprint information) to a POS device 1010 used in a store And the user inputs bio information to the biosensing device 1020 without performing a separate terminal to perform settlement.

For example, when a payment system requests a payment for a predetermined article using the fingerprint information, the store manager inputs a price for a predetermined article to the POS device 1010. [ Here, the store manager inputs one of the customer confirmation information such as the telephone number of the user, the membership number, the resident registration number, and the plurality of card payment means linked with the customer confirmation information. Here, the customer confirmation information and the card payment means may be input by the user.

Accordingly, the POS device 1010 outputs a guidance message to place a finger on the biosensing device 1020 to measure the finger vein of the user.

When the user places a finger on the biosensing device 1020 according to the guidance message, the biosensing device 1020 interlocks with the payment processing server (not shown) through the POS device 1010 to transmit the sensed fingerprint information . Here, the payment processing server (not shown) performs settlement authentication based on the fingerprint information of the customer terminal 930, and transmits a settlement approval result to the POS device 1010 to end the settlement process.

The foregoing description is merely illustrative of the technical idea of the present embodiment, and various modifications and changes may be made to those skilled in the art without departing from the essential characteristics of the embodiments. Therefore, the present embodiments are to be construed as illustrative rather than restrictive, and the scope of the technical idea of the present embodiment is not limited by these embodiments. The scope of protection of the present embodiment should be construed according to the following claims, and all technical ideas within the scope of equivalents thereof should be construed as being included in the scope of the present invention.

110: Terminal 112: Payment Application
120: payment terminal 122: payment dongle
130: payment authentication device 140: authentication server
150: settlement agent server 160: card company server
210: Pairing unit 220:
222: authentication information acquisition unit 230: authentication processing unit
240: Payment approval processing unit

Claims (19)

An apparatus for performing mobile payment authentication in cooperation with a terminal located within a predetermined distance,
A communication unit for receiving a settlement request signal from the terminal and transmitting an authentication request signal corresponding to the settlement request signal to the terminal;
An authentication information acquisition unit for acquiring mobile authentication information including biometric information and payment authentication information corresponding to the authentication request signal from the terminal;
An authentication processing unit for performing payment authentication for the mobile authentication information; And
A payment approval processing unit that is interlocked with the card issuer server and processes payment approval based on the payment authentication result,
The mobile payment authentication apparatus comprising: The method according to claim 1,
Further comprising a pairing unit for performing terminal connection authentication for the mobile settlement by performing pairing with the terminal based on the short distance communication. 3. The method of claim 2,
Wherein the pairing unit comprises:
At least one of Bluetooth, Bluetooth Low Energy (BLE), Radio Frequency Identification (RFID), Infrared Data Association (IrDA), Zigbee, and Magnetic Secure Transmission (MST) Wherein the terminal authentication unit performs the terminal authentication using the communication method of the mobile payment authentication unit. The method of claim 3,
Wherein the pairing unit comprises:
Generates a terminal list for a plurality of terminals located within a predetermined distance, and performs terminal connection authentication with a terminal selected based on a predetermined priority in the terminal list. The method of claim 3,
Wherein the pairing unit comprises:
And performs the terminal connection authentication by exchanging a public key and a random number with the terminal and connecting a link based on the secret key and the link key generated using the public key and the random number. The method of claim 3,
Wherein the pairing unit comprises:
And performs the terminal connection authentication by exchanging a token including the magnetic information with a terminal located within a predetermined distance. The method according to claim 1,
Wherein,
Receives the settlement request signal including the terminal identification information for the terminal and transmits the authentication request signal including the first encryption key to the terminal based on the terminal identification information, . 8. The method of claim 7,
The authentication information obtaining unit obtains,
And acquires the mobile authentication information encrypted using the first encryption key from the terminal, and the authentication processing unit compares the mobile authentication information with the reference authentication information generated by combining the previously stored authentication template and the first encryption key And if it is the same, performs the settlement authentication. 9. The method of claim 8,
The authentication processing unit,
Comparing the reference authentication information generated by extracting an authentication template having a higher priority among a plurality of the previously stored authentication templates with the mobile authentication information, extracting an authentication template having a next highest priority in case of inconsistency, And generates the authentication information. 9. The method of claim 8,
The authentication processing unit,
In the case of the reference authentication information generated using an authentication template having a priority lower than a preset reference rank, the mobile terminal further compares the reference authentication information with the mobile authentication information and further obtains additional authentication information from the terminal And performs the payment authentication. The method according to claim 1,
The payment approval processing unit,
Decrypting the mobile authentication information by using the second encryption key, transmitting the decrypted mobile authentication information to the card company server, acquiring payment approval information corresponding to the decrypted mobile authentication information from the card company server And the payment approval process is performed. The method according to claim 1,
The payment approval processing unit,
And transmits the card authentication request signal for the decrypted mobile authentication information to the card company server, and transmits the disposable card information acquired from the card company server to the decryption server, And if the mobile authentication information matches the mobile authentication information, processes the payment approval. A method for performing mobile payment authentication in cooperation with a terminal located within a predetermined distance,
A communication step of receiving a settlement request signal from the terminal and transmitting an authentication request signal corresponding to the settlement request signal to the terminal;
An authentication information acquiring step of acquiring mobile authentication information including biometric information and payment authentication information corresponding to the authentication request signal from the terminal;
An authentication process for performing payment authentication for the mobile authentication information; And
A payment approval processing step of interlocking with a card issuer server and processing payment approval based on the payment authentication result
The mobile payment authentication method comprising: 14. The method of claim 13,
A pairing process of performing terminal connection authentication for the mobile settlement by performing pairing with the terminal based on local area communication
The mobile payment authentication method further comprising: 15. The method of claim 14,
The pairing process includes:
Generating a terminal list for a plurality of terminals located within a predetermined distance, and performing terminal connection authentication with a terminal selected based on a predetermined priority in the terminal list. 14. The method of claim 13,
The communication process includes:
Receiving the settlement request signal including the terminal identification information for the terminal and transmitting the authentication request signal including the first encryption key to the terminal based on the terminal identification information, . 17. The method of claim 16,
The authentication information acquiring process includes:
Acquiring the mobile authentication information encrypted using the first encryption key from the terminal,
Wherein the authentication processing step compares the mobile authentication information with the reference authentication information generated by combining the pre-stored authentication template and the first encryption key, and performs the payment authentication if the same is the same. 14. The method of claim 13,
The payment approval process may include:
Decrypting the mobile authentication information by using the second encryption key, transmitting the decrypted mobile authentication information to the card company server, acquiring payment approval information corresponding to the decrypted mobile authentication information from the card company server And processing the settlement approval. 14. The method of claim 13,
The payment approval process may include:
And transmits the card authentication request signal for the decrypted mobile authentication information to the card company server, and transmits the disposable card information acquired from the card company server to the decryption server, Comparing the mobile authentication information with the mobile authentication information, and if the mobile authentication information matches, processing the payment approval.
KR1020150157676A 2015-11-10 2015-11-10 Method and Apparatus for Authenticating Mobile Payment KR101780186B1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
KR1020150157676A KR101780186B1 (en) 2015-11-10 2015-11-10 Method and Apparatus for Authenticating Mobile Payment

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
KR1020150157676A KR101780186B1 (en) 2015-11-10 2015-11-10 Method and Apparatus for Authenticating Mobile Payment

Publications (2)

Publication Number Publication Date
KR20170054917A true KR20170054917A (en) 2017-05-18
KR101780186B1 KR101780186B1 (en) 2017-09-20

Family

ID=59049087

Family Applications (1)

Application Number Title Priority Date Filing Date
KR1020150157676A KR101780186B1 (en) 2015-11-10 2015-11-10 Method and Apparatus for Authenticating Mobile Payment

Country Status (1)

Country Link
KR (1) KR101780186B1 (en)

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108681899A (en) * 2018-05-18 2018-10-19 中国联合网络通信集团有限公司 Method of payment and payment system
WO2018230958A3 (en) * 2017-06-14 2019-02-07 삼성전자 주식회사 Electronic device and control method of electronic device
KR20190136519A (en) * 2018-05-31 2019-12-10 (주)코리센 PC cafe payment managing system using a finger vein and Controlling Method for the Same
KR20210013788A (en) * 2019-07-29 2021-02-08 유비벨록스(주) Account transferring system and method thereof
KR102363313B1 (en) * 2021-03-10 2022-02-15 주식회사 고스트패스 Method for performing payment through identification using facial image and system implementing the same

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR102046708B1 (en) * 2018-03-13 2019-11-19 쿨비트엑스 엘티디 Pairing authentication method for electronic transaction device
KR102348823B1 (en) * 2018-08-22 2022-01-06 엔에이치엔한국사이버결제 주식회사 System and Method for Identification Based on Finanace Card Possessed by User

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR100863420B1 (en) * 2007-06-28 2008-10-14 (주)케이티에프테크놀로지스 Method for pairing of bluetooth devices

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2018230958A3 (en) * 2017-06-14 2019-02-07 삼성전자 주식회사 Electronic device and control method of electronic device
CN110753945A (en) * 2017-06-14 2020-02-04 三星电子株式会社 Electronic device and control method thereof
US11321686B2 (en) 2017-06-14 2022-05-03 Samsung Electronics Co., Ltd. Electronic device and control method of electronic device
CN108681899A (en) * 2018-05-18 2018-10-19 中国联合网络通信集团有限公司 Method of payment and payment system
KR20190136519A (en) * 2018-05-31 2019-12-10 (주)코리센 PC cafe payment managing system using a finger vein and Controlling Method for the Same
KR20210013788A (en) * 2019-07-29 2021-02-08 유비벨록스(주) Account transferring system and method thereof
KR102363313B1 (en) * 2021-03-10 2022-02-15 주식회사 고스트패스 Method for performing payment through identification using facial image and system implementing the same

Also Published As

Publication number Publication date
KR101780186B1 (en) 2017-09-20

Similar Documents

Publication Publication Date Title
KR101780186B1 (en) Method and Apparatus for Authenticating Mobile Payment
US11847652B2 (en) Wireless biometric authentication system and method
AU2016220072B2 (en) Secure authentication of user and mobile device
US20150066778A1 (en) Digital card-based payment system and method
KR101621254B1 (en) Payment method, computer readable recording medium and system using virtual number based on otp
JP4736398B2 (en) Authentication method between secret terminals, secret information delivery method, apparatus, system, and program
US20150199673A1 (en) Method and system for secure password entry
US20160224985A1 (en) System and method for card payment in which confirmation is available before transaction
US20160155123A1 (en) System and method for user authentication by using a physical financial card and mobile communication terminal
JP7536743B2 (en) System and method for cryptographic authentication of contactless cards - Patents.com
KR20120108599A (en) Credit card payment service using online credit card payment device
KR20120034572A (en) Authentication method and authentication system
TWI626607B (en) Smart card with dynamic token OTP function and working method thereof
CN101944216A (en) Two-factor online transaction safety authentication method and system
KR20150106198A (en) Method, server and device for certification
US20090015374A1 (en) User authentication system and method
CN105405005B (en) Mobile wallet method of payment based on optic communication and near-field communication
EP3285221A1 (en) Card payment processing system using biometric information and processing method thereof
KR101699032B1 (en) Service providing system and method for payment using electronic tag
KR20200013494A (en) System and Method for Identification Based on Finanace Card Possessed by User
KR20150144366A (en) Method for Processing Payment at Affiliate Coupled End-To-End Medium Ownership Authentication and One Time Code Authentication
KR101713200B1 (en) System and method for simplified payment service
WO2018116115A1 (en) Contactless device and method for generating a unique temporary code
TW202437168A (en) Payment system, payment method and computer-readable storage medium using mobiles devices as payment terminals
KR20150144361A (en) Method for Processing Payment by using 2-channel Authentication Coupled End-To-End Medium Ownership Authentication and One Time Code Authentication

Legal Events

Date Code Title Description
A201 Request for examination